Skadden Discusses What SEC’s Solar Winds Complaint Means for Boards, Information Security Officers

By Anita Bandy, William Ridgway, David Simon, Joshua Silverstein and Shirley Diaz November 13, 2023 by renholding

On October 30, 2023, the SEC filed a litigated complaint against SolarWinds, a software development company, and Timothy Brown, its chief information security officer (CISO). The SEC alleges that from October 2018, when SolarWinds went public, to January 2021, SolarWinds …

SEC Chair Supports Rules on Public Company Cybersecurity Disclosures

By Gary Gensler July 27, 2023 by renholding

Today [July 26], the Commission is considering adopting final rules regarding cybersecurity disclosures by public companies. I am pleased to support these rules because they will enhance and standardize disclosures to investors with regard to public companies’ cybersecurity practices as

…

SEC Commissioner Peirce Dissents from Rules on Cybersecurity Disclosure

By Hester M. Peirce July 27, 2023 by renholding

Thank you, Chair Gensler. Although better than the proposal, this final cybersecurity disclosure rule continues to ignore both the limits to the SEC’s disclosure authority and the best interests of investors. Moreover, the Commission has failed to explain why we

…

SEC Commissioner Speaks on Cybersecurity and Protecting Investors

By Jaime Lizárraga May 19, 2023 by renholding

Good morning. Thank you, Bob [Zukis]. It is a pleasure to be here today, and I thank the Digital Directors Network for hosting this discussion about cybersecurity. This topic is so essential for the safety and resiliency of our capital

…

Debevoise Discusses White House’s National Cybersecurity Strategy

By Luke Dembosky, Avi Gesser, Erez Liebermann, Jim Pastore and Michael R. Roberts March 30, 2023 by renholding

On March 2, 2023, the White House Office of the National Cyber Director (“ONCD”) released the Biden Administration’s (the “Administration”) long-awaited National Cybersecurity Strategy (the “Strategy”), the first since the Trump Administration’s strategy was issued in September 2018. The Strategy …

Davis Polk Discusses New SEC Cybersecurity Requirements for Regulated Market Participants

By Robert A. Cohen, Greg D. Andres, James W. Haldin, Gabriel D. Rosenberg and Zachary J. Zweihorn March 29, 2023 by renholding

The SEC proposed an array of new cybersecurity-related requirements in the form of: (1) an expansive new Rule 10, (2) extending the reach of Regulation SCI, and (3) expanding Regulation S-P, including to require incident response programs. The SEC also …

Covington Discusses SEC’s Focus on Cybersecurity Incident Disclosure

By David Engvall, Ashden Fein, Gerald Hodgkins, Ian Macdonald and Micaela McMurrough March 27, 2023 by renholding

On March 9, 2023, the Securities and Exchange Commission (the “SEC”) Enforcement Division’s Crypto Assets and Cyber Unit announced a settlement with Blackbaud, Inc. involving allegations of inadequate disclosure controls and procedures and material misstatements and omissions concerning a 2020 …

SEC Chair Gensler on Recent Bank Failures, Enhanced Cybersecurity for Market Entities

By Gary Gensler March 16, 2023 by renholding

Good morning. This is an open meeting of the U.S. Securities and Exchange Commission on March 15th, 2023. I want to welcome members of the public who are listening in.

Before we get to today’s agenda, I want to address

…

Cleary Gottlieb Discusses the SEC’s Disclosure Agenda and Corporate Governance

By Helena K. Grannis and Synne D. Chapman January 27, 2023 by renholding

In 2022, public companies witnessed a new kind of corporate governance activism. New rules and regulations from the Securities and Exchange Commission (the SEC) use the lever of mandated disclosure to push for corporate governance actions, and in some cases …

Wachtell Lipton Discusses Key Issues for Boards in Corporate Governance for 2023

By Martin Lipton, Steven A. Rosenblum, Karessa L. Cain and Hannah Clark December 6, 2022 by renholding

While the world recovers from the worst of the pandemic, the economic, political and social repercussions will continue to play out in ways that, while unpredictable, are in some respects characterized by observable patterns of cause-and-effect and cyclicality. The pendulum …

Debevoise & Plimpton Discusses How to Protect AI Models and Data

By Avi Gesser, Anna Gressel, Tristian Lockwood, Noah Schwartz and Joel Yonts September 30, 2022 by renholding

One of the most difficult challenges for cybersecurity professionals is the increasing complexity of corporate systems. Mergers, vendor integrations, new software tools and remote work all expand the footprint of companies’ information systems, creating a larger attack surface for hackers. …

Skadden Discusses Executive Order on CFIUS Authority to Identify National Security Risks

By Brian J. Egan, Michael E. Leiter and Ondrej Chvosta September 19, 2022 by renholding

On September 15, 2022, President Joe Biden issued an executive order (EO) “on ensuring robust consideration of evolving national security risks” by the Committee on Foreign Investment in the United States (CFIUS or the Committee). The EO does not change …

The War on Business

By Tom C.W. Lin September 8, 2022 by renholding

Nations and businesses often compete and clash. But the war on business has escalated in recent years as nation-states and non-state actors target specific businesses with sanctions and recriminations and new intensity and methods. The many legal, economic, and social …

Why Cybersecurity Is a Growing Concern in M&A

By Gabriele Lattanzio and Jérôme Taillard August 18, 2022 by renholding

The Fortune 500 CEO survey in 2021 found that two-thirds of interviewed CEOs consider cybersecurity risk their greatest concern, far greater than the risks presented by political instability or climate change.[1] They are right to be concerned, particularly in …

Wachtell Lipton Discusses Emerging Issues in Decentralized Governance and the Lessons of Corporate Governance

By Kevin S. Schwartz, David M. Adlerstein, David E. Kirk and I. Andrew Mun June 6, 2022 by renholding

While recent gyrations in cryptoasset markets have focused attention on the future contours of stablecoins, market-making, and impending regulation, another feature of the blockchain landscape is also confronting noteworthy challenges. Specifically, a new breed of business organization has emerged …

Assistant AG for National Security Speaks on Cybersecurity

By Matthew G. Olsen June 3, 2022 by renholding

Good afternoon. I’m Matt Olsen and I am the Assistant Attorney General for National Security at the United States Department of Justice.

I’m very pleased to be here at CyCon. Thank you to Lucas for moderating this panel, to my

…

Sullivan & Cromwell Discusses SEC’s Proposed New Cybersecurity Risk-Management Rules for Investment Advisers and Firms

By Whitney Chatterjee, Donald Crawshaw, Eric Diamond, William Farrar and Anthony Lewis March 24, 2022 by renholding

On February 9, 2022, the Securities and Exchange Commission (the “SEC”) voted 3 to 1 (Commissioner Peirce dissenting[1]) to propose cybersecurity risk management rules and amendments for registered investment advisers, registered investment companies and business development companies (the …

Debevoise Discusses New Cyber Incident Reporting for Critical Infrastructure

By Luke Dembosky, Avi Gesser, HJ Brehmer and Stephanie Thomas March 23, 2022 by renholding

On March 15, 2022, President Biden signed the Cyber Incident Reporting for Critical Infrastructure Act of 2022 (the “Act”) into law, requiring critical infrastructure entities to report covered cybersecurity incidents to the Cybersecurity and Infrastructure Security Agency (“CISA”) within 72 …

How FinTech Affects Corporate Takeover Markets

By Joanna Wang and Alan L. Zhang March 18, 2022 by renholding

Investment in financial technology, or FinTech, has increased dramatically over the past decade – from a total value of $9 billion worldwide in 2010 to well above $100 billion in recent years, with a peak of $215 billion in 2019. …

The SEC’s Proposed Cyber 8-K Disclosure

By Joshua Mitts March 17, 2022 by renholding

On March 9, 2022, the SEC proposed rules mandating cybersecurity disclosure, including a new Item 1.05 for Form 8-K, which requires current reporting of cybersecurity incidents deemed by the registrant to be material.

In a 2018 article published in the …

« Previous 1 2 3 4 … 6 Next »

The CLS Blue Sky Blog

Columbia Law School's Blog on Corporations and the Capital Markets

cybersecurity